Hi good folks,

I'm at a dead end in getting a Netatalk service running correctly.  It's running and I can connect to it from my Lion Mac, but when I try to write a file to it, the Mac says I need to Authenticate and then says that I don't have permission to write.

The logs are filled with
Jan 21 05:45:16 tequila afpd[15829]: getnamefromuuid(61C4BD64-BEA9-450D-9C04-2C1
9EA8F6545): no result from ldap_getnamefromuuid
Jan 21 05:45:16 tequila afpd[15829]: getnamefromuuid(uuid, &username, &uuidtype)
 failed: Resource temporarily unavailable

I was trying to avoid setting up a LDAP service because there isn't much documentation on how to make that work with netatalk, so I've linked my dhx.so files to the passwd versions hoping to avoid PAM.
-rwxr-xr-x 1 root root 17128 Aug 19 00:25 uams_dhx2_pam.so
-rwxr-xr-x 1 root root 13000 Aug 19 00:25 uams_dhx2_passwd.so
lrwxrwxrwx 1 root root    19 Jan 20 09:16 uams_dhx2.so -> uams_dhx2_passwd.so
-rwxr-xr-x 1 root root 16328 Aug 19 00:25 uams_dhx_pam.so
-rwxr-xr-x 1 root root  9512 Aug 19 00:25 uams_dhx_passwd.so
lrwxrwxrwx 1 root root    18 Jan 20 09:16 uams_dhx.so -> uams_dhx_passwd.so

But I still get the getnamefromuuid failures.  My configuration is pretty vanilla: just creating some time machine shares.

[root@tequila netatalk]# rpm -q netatalk
netatalk-2.2.0-2.fc16.x86_64

AppleVolumes.default:
:DEFAULT: options:upriv,usedots
/timemachines/RyanTM    "RyanTM"        options:tm

netatalk.conf is unchanged from the factory except for:
ATALK_NAME=filer

afpd.conf is factory, so it doesn't have any lines uncommented.

All the other config files are factory.  afp_ldap.conf is all commented out.

So what's the simplest secret sauce to make Netatalk grant me write privileges to my share?  Do I really have to implement a LDAP server?  What ports then will I need to open up in iptables to make that work?  What ports do I need to have open for Netatalk?  I currently have all of these, but there isn't good documentation to say what is really needed.

# AFP Netatalk
-A INPUT -m state --state NEW -m udp -p udp --dport 427 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 427 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 548 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 5353 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 201 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 202 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 204 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 206 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 4700 -j ACCEPT
-A INPUT -m state --state NEW -m udp -p udp --dport 4700 -j ACCEPT

Thanks for the help,
-Ryan.